fb36579e16
The existing exec probes for apiserver rely on things that do not exist in the official kubernetes release images (bash, socat). This change modifies the apiserver to use HTTP probes of the recommended liveness and readiness endpoints.[0] Also sets `--anonymous-auth=true` (the default setting), as kubelet is unable to provide a client certificate when performing the health check. RBAC rules apply, but unauthenticated users will be able to access the following endpoints: apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: name: system:public-info-viewer rules: - nonResourceURLs: - /healthz - /livez - /readyz - /version - /version/ verbs: - get 0: https://v1-18.docs.kubernetes.io/docs/reference/using-api/health-checks/ Change-Id: I06d739c844fe85ec6cbf47d3bb69a39cd008ddd8 |
||
---|---|---|
.github | ||
charts | ||
doc | ||
etc/promenade | ||
examples | ||
images/promenade | ||
promenade | ||
tests | ||
tools | ||
.dockerignore | ||
.gitignore | ||
.gitreview | ||
.readthedocs.yaml | ||
.zuul.yaml | ||
LICENSE | ||
Makefile | ||
README.md | ||
entrypoint.sh | ||
requirements-direct.txt | ||
requirements-frozen.txt | ||
requirements.txt | ||
setup.cfg | ||
setup.py | ||
test-requirements.txt | ||
tox.ini |
README.md
Promenade
Promenade is a tool for bootstrapping a resilient Kubernetes cluster and managing its life-cycle via Helm charts.
Documentation can be found here.
Roadmap
The detailed Roadmap can be viewed on the OpenStack StoryBoard.
- Cluster bootstrapping
- Initial Genesis process results in a single node Kubernetes cluster with Under-cloud components deployed using Armada.
- Joining sufficient master nodes results in a resilient Kubernetes cluster.
- Destroy Genesis node after bootstrapping and re-provision as a normal node to ensure consistency.
- Life-cycle management
- Decommissioning of nodes.
- Updating Kubernetes version.
Getting Started
To get started, see getting started.
Configuration is documented here.
Bugs
Bugs are tracked in OpenStack StoryBoard.